I think most security people advocate removing administrator rights for normal Windows users, but I enjoy reading even a cursory analysis of this "best practice" as published by BeyondTrust and reported by ComputerWorld. From the press release:
BeyondTrust’s findings show that among the 2008 Microsoft vulnerabilities given a "critical" severity rating, 92 percent shared the same best practice advice from Microsoft to mitigate the vulnerability: "Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights." This language, found in the "Mitigating Factors" portion of Microsoft’s security bulletins, also appears as a recommendation for reducing the threat from nearly 70 percent of all vulnerabilities reported in 2008.
Lots of brouhaha this week about UAC in Windows 7. Microsoft sorta says it is not broken and then says it is fixed an the upcoming release candidate. Paul Thurrott sums it all up.
Hi, Jon DeVaan here to talk to you about the recent UAC feedback we’ve been receiving.
When we started the “E7” blog we were both excited and also a bit uneasy. The excitement is obvious. The unease is because at some point we knew we would mess up. We weren’t sure if we would mess up because we were blogging about a poorly designed feature or mess up because we were blogging poorly about a well-designed feature. To some it appears as though with the topic of UAC we’ve managed to do both. Our dialog is at that point where many do not feel listened to and also many feel various viewpoints are not well-informed. That’s not the dialog we set out to have and we’re going to do our best to improve.
This post is an attempt to get both the blog right and the feature right. We don’t like where we are in terms of how folks are feeling and we don’t feel good – Windows 7 is too much fun and folks are having too much fun for us to be having the dialog we’re having. We hope this post allows us to get back to having fun!
Microsoft backtracks on Windows 7 UAC, pretends it was all part of the plan from Paul’s SuperSite blog
Sometimes you just gotta laugh. Otherwise, this stuff gets really frustrating.
Microsoft Releases Updated "Microsoft Assessment and Planning Toolkit" for Windows 7 from The Road to Know Where
The Microsoft Assessment and Planning Toolkit is an agentless toolkit that will find computers on a network and perform a detailed inventory of the computers using Windows Management Instrumentation (WMI), the Remote Registry Service, or the Simple Network Management Protocol (SNMP)…
SharePoint Diagnostics Tool v1.0 for SharePoint Products and Technologies from Christophe Fiessinger’s Blog – [Cross-post from SharePoint IT Pro documentation Team Blog]
The real power of Office SharePoint Server 2007 and Windows SharePoint Services 3.0 is that they can be endlessly customized to meet a wide variety of business needs. The Protean nature of SharePoint is at once its most powerful feature and its most formidable; the complexity of your SharePoint environment can increase by orders of magnitude when you begin to shape it to suit your needs. This complexity can make troubleshooting SharePoint issues a daunting task, as many different data points from different sources must be correlated and analyzed.
The SharePoint Diagnostics (SPDiag) tool v1.0 greatly simplifies the process of gathering and analyzing troubleshooting data, and can significantly reduce the time needed to diagnose issues. SPDiag v1.0 provides administrators with a unified interface for troubleshooting SharePoint performance issues, and saves collected data and reports to a SQL Server database.
And since Project Server 2007 is a SharePoint application this tool is perfect to perform a health check of your platform…
from End User SharePoint by Dessie Lunsford
Taming the Elusive “Calculated Column” Logic. In this article I want to discuss one of the more common causes of frustration when users develop formulas – “Logical Functions”, and hopefully shed some light on the “How’s and “Why’s” of their inner-workings.
SharePoint Application Templates 101 from End User SharePoint by Tony Frankola
When it comes to SharePoint, the most important feature is the ability to manage your documents from a central location with all these cool features like versioning, permissions, workflows and stuff
Once you master the basics, you will find that SharePoint is a great application platform and can be used to build some extraordinary applications without any programming knowledge.
Back in 2007, Microsoft released 40+ free application templates for Windows SharePoint Services 3.0. Through a series of articles on EndUserSharePoint.com, I am going to analyze use cases and scenarios for these templates, and also try to provide you with some tips on how you can improve and adopt these templates for your company.
Add a YouTube Video to SharePoint 2007 from End User SharePoint by Lee Reed
This short video will show you how to add a YouTube video to your SharePoint site so that you can share these videos with your coworkers.
… Don’t get me wrong…I love wikis. I think they’re a powerful tool. But I think the most important factor in the success of a wiki is not the technology under it, but the people using it. So I was very excited to stumble upon the article Three Myths of Enterprise Wiki Deployment. The article discusses common assumptions companies have when they launch a wiki, and I recommend reading it if you’re interesting in finding ways to ensure the success of your wiki.
Tenable has released a new capability for Nessus to audit SQL server configurations. More information can be found at the Tenable blog at: http://blog.tenablesecurity.com/2009/02/auditing-ms-sql-servers-for-disa-stig-compliance-with-nessus.html